GHSA-7m27-7ghc-44w9: Next.js Allows a Denial of Service (DoS) with Server Actions

GHSA-q9jv-mm3r-j47r: PhpSpreadsheet allows bypass XSS sanitizer using the javascript protocol and special characters

GHSA-hwcp-2h35-p66w: PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page header

GHSA-wv23-996v-q229: PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability in custom properties

GHSA-j2xg-cjcx-4677: PhpSpreadsheet allows unauthorized Reflected XSS in Currency.php file

Versions of the package jsuites before 5.0.1 are vulnerable to Cross-site Scripting (XSS) due to improper user-input sanitization in the Editor() function.

**jSuites subect to Cross-site Scripting**

Moderate severity GitHub Reviewed Published Jan 31, 2023 to the GitHub Advisory Database • Updated Feb 1, 2023

Headline

GHSA-r4hg-4cpq-q57c: jSuites subect to Cross-site Scripting

Related news

ghsa: Latest News